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101. ADMINISTRATOR INSERTS THE REMOVABLE MEDIUM] 
INTO THE APPROPRIATE RECEPTACLE ON THE 
COMPUTER FOR FACILITATING READING OF THE 
MEDIUM BY THE COMPUTER 



1 


r 


102. ADMINISTRATOR RESETS THE COMPUTER | 







/f03. COMPUTER'S BOOT LOADER BEGINS BOOTING \ 
FROM THE REMOVABLE MEDIUM, IN THE PROCESS 
COMPLETELY REMOVING FROM THE COMPUTER ANY 
OPERATING SOFTWARE THAT MAY INITIALLY BE 
PRESENT ON THE COMPUTER AND REPLACING IT WITH 
THE OPERATING SYSTEM FROM THE REMOVABLE 

yMEDIUM^^^^^^^^ 



104. OPERATING SYSTEM AUTOMATICALLY ENABLES 
THE COMPUTER TO LOAD AND BEGIN PROCESSING THE 
AUTHENTICATION MODULE 



105. AUTHENTICATION MODULE ENABLES THE 
COMPUTER TO DISPLAY A LOG-ON SCREEN ON THE 
SCREEN OF VIDEO DISPLAY DEVICE 
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FIG. 2 




FIG.2A 



_YES_ 



_YES_ 



106. ADMINISTRATOR PROVIDES HIS OR HER 
IDENTIFICATION INDICIA AND AUTHENTICATION INDICIA 



I 



) 



07. AUTHENTICATION MODULE ENABLES THE 
COMPUTER TO DETERMINE WHETHER THE 
AUTHENTICATION INDICIA CONFORM TO THAT PROVIDED | 
EARLIER FOR THE ADMINISTRATOR' IDENTIFICATION 
INFORMATION 

NO 



108. COMPUTER REPEATS STEPS 106 AND 107 FOR A 
PREDETERMINED NUMBER OF TIMES TO ALLOW THE 
ADMINISTRATOR TO PROVIDE THE IDENTIFICATION 
INDICIA AND THE CORRECT AUTHENTICATION INDICIA 



i09. COMPUTER DETERMINES WHETHER THE 
ADMINISTRATOR IS ABLE TO PROVIDE THE CORRECT 
AUTHENTICATION INDICIA WHICH CONFORMS TO THE 
IDENTIFICATION INDICIA DURING THE PREDETERMINED 
^NUMBER OF ADDITIONAL TRIALS 



NO 

I 



110. AUTHENTICATION MODULE EXITS AND DOES NOT 
ALLOW THE ADMINISTRATOR TO CONTINUE THE 
CERTIFICATE GENERATION SESSION 




FTG. 2R 



/fl1. AUTHENTICATION MODULE ENABLES THE 
COMPUTER TO BEGIN EXECUTION OF THE 
COMMUNICATION CONTROL MODULE, THE 
CERTIFICATION REQUEST VERIFICATION MODULE, THE 
CERTIFICATION REQUEST EDIT MODULE AND THE 
CERTIFICATION REQUEST APPROVAL MODULE 



Lis 



112. COMMUNICATION CONTROL MODULE ENABLES THE 
COMPUTER TO REQUEST RETRIEVAL OF CERTIFICATION 
REQUESTS OVER THE NETWORK 



I 



/T13. COMPUTER PROCESSES THE FILES UNDER 
CONTROL OF THE CERTIFICATION REQUEST 
VERIFICATION MODULE TO VERIFY THAT EACH 
CONTAINS A PROPERLY FORMATTED CERTIFICATION 
REQUEST WITH NO CHARACTERS THAT ARE NOT 
ALLOWED 



114. ADMINISTRATOR MAKES USE OF THE 
CERTIFICATION REQUEST DISPLAY MODULE TO ENABLE 
THE COMPUTER TO DISPLAY A LIST OF CERTIFICATION 
REQUESTS THAT HAVE BEEN VERIFIED BY THE 
COMPUTER DURING PROCESSING UNDER CONTROL OF 
THE CERTIFICATION REQUEST VERIFICATION MODULE 



115. ADMINISTRATOR SELECTS ONE OF THE LISTED 
CERTIFICATION REQUESTS FOR PROCESSING 




} 
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116. CERTIFICATION REQUEST DISPLAY MODULE 
ENABLES THE COMPUTER TO DISPLAY INFORMATION 
FROM THE CERTIFICATION REQUEST FILE 



J 



117. CERTIFICATION REQUEST EDIT MODULE ENABLES 
UPDATE INFORMATION PROVIDED BY ADMINISTRATOR 
TO BE DISPLAYED AND STORED IN THE CERTIFICATION 
REQUEST FILE 



REJECTION 



118. ADMINISTRATOR INPUTS INDICIA INDICATING 
EITHER APPROVAL OR REJECTION OF THE CERTIFICATE 



APPROVAL 



) 



APPROVAL//119. CERTIFICATION REQUEST APPROVAL 
MODULE IS ENABLED TO, IN TURN, ENABLE THE 
COMPUTER TO GENERATE THE CERTIFICATE 



^20. CERTIFICATION REQUEST APPROVAL MODULE 
FORMATS THE CERTIFICATION REQUEST INFORMATION 
FROM THE CERTIFICATION REQUEST FILE, AS UPDATED 
BY THE ADMINISTRATOR, AS REQUIRED FOR THE 
CERTIFICATE 
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CERTIFICATION REQUEST APPROVAL MODULE \ 
CALLS THE DIGITAL SIGNATURE MODULE TO GENERATE 
A DIGITAL SIGNATURE THEREFOR, FROM THE 
INFORMATION IN THE CERTIFICATE AND THE PRIVATE 
KEY 



^122. CERTIFICATION REQUEST APPROVAL MODULE \ 
ENABLES THE COMMUNICATION CONTROL MODULE TO 
TRANSFER THE GENERATED CERTIFICATE TO THE 
ENTITY THAT REQUESTED IT OR TO A STANDARD 
DISTRIBUTION POINT SUCH AS A DIRECTORY SERVICE 



(\7Z. CERTIFICATION REQUEST APPROVAL MODULE 
GENERATES A REJECTION NOTICE FOR TRANSMISSION 
TO THE ENTITY THAT REQUESTED THE CERTIFICATE, 
WHICH MAY INCLUDE INFORMATION AS TO WHY THE 
CERTIFICATE WAS REJECTED 



I 



124. CERTIFICATION REQUEST APPROVAL MODULE 
ENABLES THE COMMUNICATION CONTROL MODULE TO 
TRANSFER THE GENERATED REJECTION NOTICE TO THE 
ENTITY THAT REQUESTED THE CERTIFICATE 




125. CERTIFICATION REQUEST DISPLAY MODULE 
ENABLES THE COMPUTER TO REMOVE THE 
JUST-PROCESSED CERTIFICATION REQUEST FROM THE 
LIST DISPLAYED ON THE SCREEN 14 



